theevilbit / Shield
An app to protect against process injection and suspicious file links on macOS
☆218Updated 3 years ago
Alternatives and similar repositories for Shield:
Users that are interested in Shield are comparing it to the libraries listed below
- A command line tool for pstree-like output on macOS with additional pid capturing capabilities☆250Updated 6 months ago
- File Monitor Library (based on Apple's new Endpoint Security Framework)☆344Updated 2 years ago
- A DNS Monitor, leveraging Apple's NEDNSProxyProvider/Network Extension Framework☆185Updated 7 months ago
- And open-source version of % sfltool dumpbtm☆126Updated last year
- Process Monitor Library (based on Apple's new Endpoint Security Framework)☆449Updated last year
- This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…☆66Updated 4 years ago
- Secure example of an XPC helper written in Swift☆105Updated 5 years ago
- Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binar…☆96Updated 2 years ago
- A user-mode application authorization system for MacOS written in Swift☆302Updated 4 years ago
- Mapping XProtect's obfuscated malware family names to common industry names.☆84Updated 10 months ago
- Various scripts for macOS tasks☆124Updated 5 months ago
- WhatsYourSign adds a menu item to Finder.app. Simply right-, or control-click on any file to display its cryptographic signing informatio…☆321Updated last month
- Phorion Kronos is a macOS security tool designed to enhance Apple's Transparency Consent and Control (TCC) security and privacy mechanism…☆72Updated last year
- process info/monitoring library for macOS☆419Updated 4 years ago
- This is a complete Xcode project of the Endpoint Security Demo gist: https://gist.github.com/Omar-Ikram/8e6721d8e83a3da69b31d4c2612a68ba☆19Updated 2 months ago
- Scan your computer for applications that are either susceptible to dylib hijacking or have been hijacked.☆90Updated last year
- A module to expose the Endpoint Security library to Swift☆20Updated 5 years ago
- example project, utilizing Proc Info library☆70Updated 4 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Updated 5 years ago
- Visually explore all running tasks (processes) ....viewing its signature status, loaded dylibs, open files, network connection, and much …☆94Updated 4 years ago
- checks if an application is pristine (untampered) and from the official Mac App Store☆73Updated 4 years ago
- Modifications to Apple's dyld project to fix Objective-C information when extracting dyld_shared_cache from macOS Big Sur to help Hopper …☆146Updated 4 years ago
- List of legitimate macOS apps doing not great things☆35Updated 3 years ago
- View all modules on that are loaded in the OS kernel☆72Updated 2 years ago
- A macOS application for browsing the IOKit registry.☆188Updated 2 years ago
- Every Apple Platform Security Guide☆159Updated 7 months ago
- A simple auditing utility for macOS☆286Updated 4 years ago
- Sample code for macOS Extensions Part 3☆24Updated 5 years ago
- View and remove notification messages from Apple's "Notification Database"☆103Updated 4 years ago
- Every iOS security guide☆262Updated 4 years ago